Vulnerabilities > CVE-2005-4461 - SQL Injection vulnerability in Beehive Forum

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
beehive-forum
exploit available

Summary

SQL injection vulnerability in index.php in Beehive Forum 0.6.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user_sess parameter.

Exploit-Db

descriptionBeehive Forum 0.6.2 Index.PHP SQL Injection Vulnerability. CVE-2005-4461. Webapps exploit for php platform
idEDB-ID:27165
last seen2016-02-03
modified2005-12-22
published2005-12-22
reportertrueend5
sourcehttps://www.exploit-db.com/download/27165/
titleBeehive Forum 0.6.2 Index.PHP SQL Injection Vulnerability